Oct 9, 2017

Credential stuffing is the automated injection of breached username/password pairs in order to fraudulently gain access to user accounts.

This is a subset of the brute force attack category: large numbers of spilled credentials are automatically entered into websites until they are potentially matched to an existing account, which the attacker can then hijack for their own purposes.